Hacker Newsnew | comments | show | ask | jobs | submit | pavs's commentslogin

Can grafana be used as aa alternative for cacti? Does it support snmp?

-----


Grafana is not a time series store or metric fetching agent. It s dashboard and graph composer that currently support Graphite, InfluxDB and OpenTSDB (and KariosDB via plugin).

So if you have metrics in one of those time series stores then Grafana is a really awesome tool for visualizing those metrics.

-----


youtube-dl gets updated very frequently and the version that comes with your distribution (ie, ubuntu) usually is out of date and doesn't work often on most sites. So its better to download from the source and update it using "youtube-dl -U"

-----


That's true for the version in Debian stable as well. The package in unstable tends to pick up upstream updates pretty quickly, though, especially when they're needed to fix site support.

-----


https://www.cia.gov/library/center-for-the-study-of-intellig...

-----


I have some vps with digitalocean, I haven't logged in to them in a long time, even after shellshock surfaced publicly. about aftter a month later I checked to see if I am vulnerable through shellshocker.net test and it was negative. I am guessing my provider did something to fix it.

-----


Maybe somebody other did close the vulnerabilty for you. Maybe the same guy who is lending your server for DDOS attacks now.

-----


> ... vps with digitalocean ... I am guessing my provider did something to fix it.

I don't think DO offers any managed service. They wouldn't do anything to fix your servers. It's entirely on you to keep them updated.

Edit: https://www.digitalocean.com/help/policy/ <- they really don't offer it

-----


I know they dont, I didn't say they do. But my non up-to-date Ubuntu server wasn't vulnerable when I checked about a month after shellshock vulnerable went public.

-----


Have you considered you may be using a software stack that is not (obviously) vulnerable? Not every software is vulnerable by default on all URLs, just the ones that wind up calling out to bash in a specific way.

-----


If I am not wrong the vulnerability test on shellshocker.net tests bash directly. Either way I could very well be wrong and I might have missed something.

-----


No, you would need a vulnerable service running on the VPS in order to exploit it.

-----


Did you run the system test from the website?

https://shellshocker.net/#systemtest

-----


Yes that's the one I was talking about. Ran the test before and after updating. It was the same (negative). I ran the same test on the relative up todate home computer (Ubuntu) and it was vulnerable on some of the tests. This IS weird.

-----


The scary possibility is that someone hacked you, backdoored the server, and then patched the vulnerability to keep others out.

-----


So somebody used shellshock to break in, then plugged the hole to prevent others from accessing the server, and is now using your server for... whatever?

-----


Ubuntu, for instance, has unattended-upgrade (that it defaults to on), the premise being that it will forcefully install and use critical security patches. Ideally you'd have done this yourself ASAP, but if not I have to think that unattended-upgrade came into play at some point.

-----


That must be it. I can't think of any other way it could be patched. I didn't know about unattended-upgrade before.

-----


unattended-upgrade in default mode does _not_ update anything. Neither on Ubuntu, Debian or any other distribution.

-----


Default means "the default when you install Ubuntu", not the unconfigured state of that process. For kernel and in-use things it would still require a restart, however maybe at some point DO forced a restart, even if unrelated.

-----


doesn't microsoft have a similar program with colleges for the last 10-15 years or so?

-----


Yes. We use Visual Studio at school, and I can get it for free from their website. But looking at how much do the premium versions cost, I try not to get used to any of the features too much.

-----


You shouldn't let that scare you away. There's a good article from Joel on Software about how software is priced. It might be this (it's long enough and old enough it might be right): http://www.joelonsoftware.com/articles/CamelsandRubberDuckie...

but essentially you're likely to find many models of software (from large software vendors) with a lot of different models for how you can try / use / own it. My sense is that most commercial software vendors want you to use their software and want you to get it legitimately and want to find a way where you can pay what vaguely seems like it should be mutually agreeable (if you're using it educationally, there are often ways to get it for free, if you're a developer for a large organization, they want that organization to actually pay for it and support the value they're getting out of you using it).

I worked on MS Office and I once remember Sinofsky (then in charge of Office) once talking about the pricing structure of Office and saying nobody paid the ~$400 MSRP. People get it bundled with new computers, pay substantially lower upgrade fees, or something else. I don't remember if he went so far as to say "at some level, people pirate it" but that's a reality that only the really oblivious would ignore. The point is - try stuff out, see what you like, and try to figure out what makes you the most productive without worrying about "some day I won't be able to afford this" (but by all means you should also rabble-rouse if you find the prices for the software you use are unreasonable and inflexible).

-----


Its a programming language for the web. Not only is running in browser a benefit, its a necessity.

-----


I guess he meant that since apple ipad devices sells many orders of magnitude more than nexus devices, Apple can't be trying to steal Nexus's thunder; if anything it should be other way around.

Personally I have no opinion one way or another. They are all after your money and we here bitching about who is good at it. I am still happy with my three year old phone, and it does pretty much everything I need.

-----


Obama winning Nobel Peace prize wasn't a stretch, it was a farce.

-----


Mr. Kissinger has won the nobel prize. Its going to be hard to top that.

-----


Kissinger won it jointly for a concrete agreement ( http://www.nobelprize.org/nobel_prizes/peace/laureates/1973/... ). The rationale for Obama arguably had no such concrete achievement: "The Committee endorses Obama's appeal that "Now is the time for all of us to take our share of responsibility for a global response to global challenges."' . The full rationale is at http://www.nobelprize.org/nobel_prizes/peace/laureates/2009/... .

-----


Kissinger was awarded the NPP in 73. Bangladesh Liberation War happened in 71.

Kissinger's support of Pakistan was a direct processor to and some would say the enabler of the atrocities committed during the Bangladesh Liberation War. (http://en.wikipedia.org/wiki/Henry_Kissinger#1971_India.E2.8...)

Some would say that this was due to real-politic, but its entirely reasonable to suggest that this was due to Kissinger's personal hatred of Indira Gandhi(http://en.wikipedia.org/wiki/Henry_Kissinger#cite_note-33)

More than a million civilians were killed and more than 30 million civilians were displaced during this genocide. http://en.wikipedia.org/wiki/1971_Bangladesh_genocide

Kissinger's support to the Pakistan Army was in spite of the US's own officials aware of and dissenting to the policy. http://en.wikipedia.org/wiki/Archer_Blood#The_Blood_telegram

All this was well known when Mr. Kissinger was awarded the prize. That award was unreasonable.

"Political satire became obsolete when Henry Kissinger was awarded the Nobel Prize"

-----


And Yasser Arafat; there have been many contentious Peace Prize recipients[0]

[0] https://en.wikipedia.org/wiki/Nobel_Peace_Prize#Criticism_of...

-----


So did Shimon Perez

-----


Putin was a nominee this time round. I think that could have done it.

-----


I don't know about you but paypal asked me to send a picture of my id along with a recent picture of me. They froze my account until I did so.

-----


Not just more nodes, then it would have been easy, but more "credible and relevant" nodes. At least that's the idea.

-----


correct. simple back-links no longer have the weight they used to (and in some situations can actually harm your SEO).

Backlinks must come from other reputable (in google's algorithm's eye's) sites before they carry any weight.

So, this would mean, tldp.org has a lot of top-ranked linux/bash and related sites pointing to it's pages.

-----

More

Applications are open for YC Summer 2015

Guidelines | FAQ | Support | Lists | Bookmarklet | DMCA | Y Combinator | Apply | Contact

Search: